$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/brfd-XD_WRsfJj26bdliHMCmfcA.roa File: brfd-XD_WRsfJj26bdliHMCmfcA.roa (raw, json) Hash identifier: EUFSJx51uKzd/DTA4ltAWunc7W2chNZup2iSxQ4BtJk= Subject key identifier: 6E:B7:DD:F9:70:FF:59:1B:1F:26:3D:BA:6D:D9:62:1C:C0:A6:7D:C0 Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Certificate serial: 09 Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/brfd-XD_WRsfJj26bdliHMCmfcA.roa Signing time: Mon 01 Apr 2024 23:57:05 +0000 ROA not before: Mon 01 Apr 2024 23:57:05 +0000 ROA not after: Sat 15 Mar 2025 01:30:02 +0000 asID: 18071 IP address blocks: 157.8.1.224/27 maxlen: 27 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/b2g-rjmhc4rmyT_fBB8RSOZTTfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b2g-rjmhc4rmyT_fBB8RSOZTTfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D Validity Not Before: Apr 1 23:57:05 2024 GMT Not After : Mar 15 01:30:02 2025 GMT Subject: CN=6EB7DDF970FF591B1F263DBA6DD9621CC0A67DC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ec:b1:e9:3a:ba:f7:83:4b:7c:42:f8:8f:ba: af:79:1c:06:f8:68:a0:01:70:d2:dc:c1:a0:fd:1a: a6:c3:b0:09:6a:75:41:d8:27:0f:f1:45:e9:b9:e6: f2:5d:e5:ff:5c:22:31:a4:1a:cc:65:3a:4e:83:54: 81:d9:9f:bd:21:15:65:8d:83:a4:61:bc:e2:38:1e: db:82:4a:1c:fd:65:bd:63:44:b7:02:f2:e6:6b:ec: e2:02:7d:6b:3b:b9:78:73:4e:45:2e:4f:94:1a:1c: 5b:bd:30:c3:3b:80:64:cc:72:0e:7e:dd:67:a3:28: 4d:26:d4:4c:91:21:60:c3:17:8d:f4:28:df:84:3d: 7e:bf:d9:37:70:6d:3f:a0:67:6a:76:74:77:fb:b7: fc:4c:00:92:7c:76:b8:f5:6e:f7:7e:74:4e:8e:5b: 2e:0b:d5:7c:05:fe:5d:b4:13:96:e5:fe:7a:53:bb: fd:5b:9f:58:a3:92:20:17:c6:e1:17:56:33:bb:59: 77:1d:01:ef:63:e0:27:98:c6:7b:f0:39:1a:be:1e: 3d:df:6c:eb:9c:71:cd:b5:23:37:6f:02:87:51:79: 78:31:c2:92:06:5b:a4:4c:d9:18:3a:e3:9a:aa:a8: a9:c6:eb:b5:32:9a:0c:43:4e:9b:0c:e4:d7:17:fb: f0:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B7:DD:F9:70:FF:59:1B:1F:26:3D:BA:6D:D9:62:1C:C0:A6:7D:C0 X509v3 Authority Key Identifier: keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/brfd-XD_WRsfJj26bdliHMCmfcA.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.8.1.224/27 Signature Algorithm: sha256WithRSAEncryption 2f:0d:eb:b9:10:3d:9d:6e:a3:25:39:f0:09:61:c8:42:0b:93: 5e:6f:ba:38:e0:1a:65:fe:8d:96:24:90:24:69:d9:3d:10:72: d5:2b:8c:6f:9f:58:35:b5:9b:0d:3d:08:11:62:22:32:15:8d: 7e:22:48:64:7c:87:cb:f2:44:03:88:f4:13:5c:02:20:dd:ab: a3:29:20:03:f4:b4:12:c5:40:35:4d:2d:cd:6c:6a:75:98:ed: fa:0a:54:e8:24:85:8c:05:02:00:d7:72:03:e3:2a:b3:3c:0b: 62:8f:40:1d:e8:a9:8f:5f:86:c3:ef:48:02:40:f2:fd:91:be: 2b:5e:da:6f:cf:91:26:19:a5:5d:8f:5a:45:b5:6b:68:66:5b: eb:42:ba:b5:e0:99:d3:c1:38:16:f9:26:25:fa:b7:05:a8:d7: df:8b:f3:dc:fa:a8:30:e0:ba:b2:fe:7d:47:82:f3:d4:a0:f6: 47:90:64:d8:7d:1e:36:9f:10:9e:3e:63:c0:ce:fb:75:4b:dc: c9:63:80:f9:8a:f3:fc:aa:4e:cc:e6:ef:ea:82:ab:65:e6:13: a6:53:cc:32:9d:52:2b:64:26:13:eb:e0:ac:62:47:6d:68:9c: 9a:49:f7:62:40:44:3c:0f:a6:32:4f:e7:1c:bb:36:f9:b4:ae: 04:bc:72:ca -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIBCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MTkx Q0I5RjRDNDIyRDNCM0Q2NzUzNzFCMThBOERBRERBRTg3OThEMB4XDTI0MDQwMTIz NTcwNVoXDTI1MDMxNTAxMzAwMlowMzExMC8GA1UEAxMoNkVCN0RERjk3MEZGNTkx QjFGMjYzREJBNkREOTYyMUNDMEE2N0RDMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALbssek6uveDS3xC+I+6r3kcBvhooAFw0tzBoP0apsOwCWp1Qdgn D/FF6bnm8l3l/1wiMaQazGU6ToNUgdmfvSEVZY2DpGG84jge24JKHP1lvWNEtwLy 5mvs4gJ9azu5eHNORS5PlBocW70wwzuAZMxyDn7dZ6MoTSbUTJEhYMMXjfQo34Q9 fr/ZN3BtP6BnanZ0d/u3/EwAknx2uPVu9350To5bLgvVfAX+XbQTluX+elO7/Vuf WKOSIBfG4RdWM7tZdx0B72PgJ5jGe/A5Gr4ePd9s65xxzbUjN28Ch1F5eDHCkgZb pEzZGDrjmqqoqcbrtTKaDENOmwzk1xf78K0CAwEAAaOCAicwggIjMB0GA1UdDgQW BBRut935cP9ZGx8mPbpt2WIcwKZ9wDAfBgNVHSMEGDAWgBRxkcufTEItOz1nU3Gx io2t2uh5jTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGA1UdHwRgMF4wXKBa oFiGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4 MTAwMDAvMTkzNy9jWkhMbjB4Q0xUczlaMU54c1lxTnJkcm9lWTAuY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9jWkhMbjB4Q0xUczlaMU54c1lxTnJk cm9lWTAuY2VyMA4GA1UdDwEB/wQEAwIHgDCBvAYIKwYBBQUHAQsEga8wgawwYgYI KwYBBQUHMAuGVnJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMTkzNy9icmZkLVhEX1dSc2ZKajI2YmRsaUhNQ21mY0Eucm9h MEYGCCsGAQUFBzANhjpodHRwczovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAv cnJkcC9hcC9ub3RpZmljYXRpb24ueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIA ATAHAwUFnQgB4DANBgkqhkiG9w0BAQsFAAOCAQEALw3ruRA9nW6jJTnwCWHIQguT Xm+6OOAaZf6NliSQJGnZPRBy1SuMb59YNbWbDT0IEWIiMhWNfiJIZHyHy/JEA4j0 E1wCIN2roykgA/S0EsVANU0tzWxqdZjt+gpU6CSFjAUCANdyA+MqszwLYo9AHeip j1+Gw+9IAkDy/ZG+K17ab8+RJhmlXY9aRbVraGZb60K6teCZ08E4FvkmJfq3BajX 34vz3PqoMOC6sv59R4Lz1KD2R5Bk2H0eNp8Qnj5jwM77dUvcyWOA+Yrz/KpOzObv 6oKrZeYTplPMMp1SK2QmE+vgrGJHbWicmkn3YkBEPA+mMk/nHLs2+bSuBLxyyg== -----END CERTIFICATE-----Generated at Sat Jun 1 15:54:17 2024 by rpki-client on console-ams.rpki-client.org